Additional Software &
Services

AWS Marketplace

AWS Marketplace is an online store where you can buy or sell software that runs
on AWS. As a subscriber, you can find, buy, and quickly deploy software
that runs on AWS. As a seller, you can manage the sales channel for
products you sell. For more information, see AWS Marketplace. CloudTrail supports
logging only the BatchMeterUsage action. For information, see
the AWS Marketplace Metering Service API Reference.

Support began 05/02/2017

Analytics

Amazon Athena

Amazon Athena is an interactive query service that makes it easy to analyze
data directly in Amazon Simple Storage Service using standard SQL. With a few actions
in the
AWS Management Console, you can point Athena at your data stored in Amazon S3 and
begin using
standard SQL to run ad-hoc queries and get results in seconds. For more
information, see the Amazon Athena User Guide.

Amazon EMR is a web service that makes it easy to process large
amounts of data efficiently. Amazon EMR uses Hadoop processing combined with
several services from AWS to perform such tasks as web indexing, data
mining, log file analysis, machine learning, scientific simulation, and data
warehousing. For more information, see the Amazon EMR Developer Guide. For information
about the Amazon EMR calls logged by CloudTrail, see Logging Amazon EMR API
Calls in AWS CloudTrail.

AWS Glue is a fully managed ETL (extract, transform, and load) service
that makes it simple and cost-effective to categorize your data, clean it,
enrich it, and move it reliably between various data stores.

Amazon QuickSight is a business analytics service you can use to build
visualizations, perform ad hoc analysis, and quickly get business insights
from your data. Amazon QuickSight seamlessly discovers AWS data sources, enables
organizations to scale to hundreds of thousands of users, and delivers fast
and responsive query performance by using a robust in-memory engine (SPICE).

Amazon Simple Queue Service (Amazon SQS) offers reliable and scalable hosted queues
for storing
messages as they travel between computers. By using Amazon SQS, you can move data
between distributed components of your applications that perform different
tasks without losing messages or requiring each component to be always
available. For more information, see the Amazon Simple Queue Service Developer Guide. For information
about the Amazon SQS calls logged by CloudTrail, see Logging Amazon SQS API
Actions Using AWS CloudTrail.

AWS Step Functions enables you to coordinate a network of computing resources
across distributed components using state machines. You define state
machines consisting of states that perform units of work, or tasks. Tasks
are invocations of your resources. They report their results, along with
success, failure, or heartbeat notifications back to Step Functions. By
following the logic flow expressed in your state machine definition, Step
Functions coordinates when tasks are run, and passes data between the tasks.
For more information, see the AWS Step Functions Developer Guide. For information about the
AWS Step Functions calls logged by CloudTrail, see Logging AWS Step Functions API Calls with
AWS CloudTrail.

Support began 12/01/2016

Business
Productivity

Alexa for Business

Alexa for Business gives you the tools you need to manage Alexa devices, enroll your
users, and assign skills, at scale.

Compute

Application Auto Scaling

With Application Auto Scaling, you can automatically scale your AWS resources. The
experience is similar to that of Amazon EC2 Auto Scaling. You can use Application
Auto Scaling to define
scaling policies to automatically scale your AWS resources, scale your
resources in response to Amazon CloudWatch alarms, and view the history of your
scaling events. For more information, see the Application Auto Scaling API Reference. For
information about the Application Auto Scaling calls logged by CloudTrail, see Logging Application Auto Scaling API
calls with AWS CloudTrail

AWS Batch enables you to run batch computing workloads on the AWS Cloud.
Batch computing is a common way for developers, scientists, and engineers to
access large amounts of compute resources, and AWS Batch removes the
undifferentiated heavy lifting of configuring and managing the required
infrastructure. For more information, see the AWS Batch User Guide. For more
information about the AWS Batch APIs logged by CloudTrail see Logging AWS Batch API
Calls with AWS CloudTrail.

Amazon EC2 (Amazon EC2) provides resizeable computing capacity in the AWS cloud.
You can launch as many or as few virtual servers as you need, configure
security and networking, and manage storage. Amazon EC2 can also scale up or down
quickly to handle changes in requirements or spikes in popularity, thereby
reducing your need to forecast server traffic.

Amazon ElastiCache is a web service that makes it easy to set up, manage, and scale
distributed in-memory cache environments in the cloud. It provides a high
performance, resizeable, and cost-effective in-memory cache, while removing
the complexity associated with deploying and managing a distributed cache
environment. For more information, see the Amazon ElastiCache User Guide. For information
about the ElastiCache calls logged by CloudTrail, see Logging Amazon ElastiCache API Calls Using
AWS CloudTrail.

Support began 09/15/2014

Amazon Redshift

Amazon Redshift is a fast, fully managed, petabyte-scale data warehouse service that
makes it simple and cost-effective to efficiently analyze all your data by
using your existing business intelligence tools. It is optimized for
datasets that range from a few hundred gigabytes to a petabyte or more. For
more information, see the Amazon Redshift Database Developer Guide. For more information about Amazon Redshift API
calls logged by CloudTrail, see Using
AWS CloudTrail for Amazon Redshift. For the list of Amazon Redshift calls logged by
CloudTrail, see the Amazon Redshift API Reference.

Support began 06/10/2014

Amazon Relational Database Service

Amazon Relational Database Service (Amazon RDS) is a web service that makes it easier
to set up,
operate, and scale a relational database in the cloud. It provides
cost-efficient, resizeable capacity for an industry-standard relational
database and manages common database administration tasks. For more
information, see the Amazon Relational Database Service User Guide. For information about the Amazon RDS calls
logged by CloudTrail, see Logging
Amazon RDS API Calls Using AWS CloudTrail.

Support began 11/13/2013

Desktop & App
Streaming

Amazon WorkSpaces

Amazon WorkSpaces offers an easy way to provide a cloud-based desktop experience
to your end-users. A choice of bundles offer a range of different amounts of
CPU, memory, storage, and a choice of applications. Users can connect from a
PC, Mac desktop computer, iPad, Kindle, or Android tablet. For more
information, see the Amazon WorkSpaces Administration Guide. For information about the Amazon WorkSpaces
actions logged by CloudTrail, see Logging Amazon WorkSpaces API Calls by Using CloudTrail.

AWS CodeDeploy is a deployment service that enables developers to automate the
deployment of applications to Amazon Elastic Compute Cloud (Amazon EC2) instances,
and to update the
applications as required. For more information, see the AWS CodeDeploy User Guide. For
information about the AWS CodeDeploy calls logged by CloudTrail, see Monitoring Deployments with
AWS CloudTrail.

AWS CodeStar is a cloud-based service for creating, managing, and working
with software development projects on AWS. You can develop, build, and
deploy applications on AWS with an AWS CodeStar project. An AWS CodeStar project
creates and integrates AWS services for your project development
toolchain. For more information, see the AWS CodeStar User Guide. For information
about the AWS CodeStar calls logged by CloudTrail, see Logging AWS CodeStar API Calls with
AWS CloudTrail.

Support began 06/14/2017

Game Development

Amazon GameLift

Amazon GameLift is a fully managed service for deploying, operating, and scaling
session-based multiplayer game servers in the cloud. You can deploy your
first game server in the cloud in just minutes, eliminating up to thousands
of hours in upfront software development. For more information about GameLift,
see the Amazon GameLift Developer Guide. For information about the GameLift calls logged by CloudTrail,
see Logging Amazon GameLift
API Calls with AWS CloudTrail.

Support began 01/27/2016

Internet of
Things

AWS IoT

AWS IoT provides secure, bi-directional communication between
Internet-connected things (such as sensors, actuators, embedded devices, or
smart appliances) and the AWS cloud. This enables you to collect telemetry
data from multiple devices and store and analyze the data. AWS IoT Device Management is a cloud-based device management
service that makes it easy for customers to securely manage IoT devices
throughout their lifecycle. For more information about AWS IoT and AWS IoT Device
Management,
see the AWS IoT Developer Guide. For information
about the AWS IoT and AWS IoT Device Management calls logged by CloudTrail, see Logging
AWS IoT API calls with AWS CloudTrail.

Support began 04/11/2016

Machine Learning

Amazon Lex

Amazon Lex is an AWS service for building conversational interfaces for
applications using voice and text. With Amazon Lex, the same conversational
engine that powers Amazon Alexa is now available to any developer. You can
use it to build sophisticated, natural language chatbots into your new and
existing applications. For more information, see the Amazon Lex Developer Guide. For
information about the Amazon Lex API calls logged by CloudTrail, see Logging Amazon Lex API
Calls with CloudTrail.

Amazon SageMaker is a fully managed machine learning service. With Amazon SageMaker,
data
scientists and developers can quickly and easily build and train machine
learning models, and then directly deploy them into a production-ready
hosted environment. For more information, see the Amazon SageMaker Developer Guide. For
information about the Amazon SageMaker calls logged by CloudTrail, see Logging Amazon SageMaker API
Calls with AWS CloudTrail.

Like any supported service, when logging is turned on, CloudTrail logs actions
to an Amazon S3 bucket that you specify. All CloudTrail actions are logged. See the
AWS CloudTrail API Reference.

Support began 11/13/2013

Amazon CloudWatch

Amazon CloudWatch monitors your AWS resources and the applications you run on
AWS. You can use CloudWatch to collect and track metrics which are the variables
you want to measure for your resources and applications. CloudWatch alarms send
notifications or automatically make changes to the resources you are
monitoring based on rules that you define. For more information, see the
Amazon CloudWatch User Guide. For information about the CloudWatch calls logged by CloudTrail, see
Logging Amazon CloudWatch API
Calls in AWS CloudTrail.

Support began 04/30/2014

Amazon CloudWatch Events

Amazon CloudWatch Events delivers a timely stream of system events that describe changes
in AWS resources to AWS Lambda functions, streams in Amazon Kinesis Data Streams,
Amazon SNS
topics, or built-in targets. Using simple rules that you can set up quickly,
you can match events and route them to one or more target functions or
streams. For more information, see the Amazon CloudWatch Events User Guide. For information
about the CloudWatch calls logged by CloudTrail, see Logging Amazon CloudWatch Events API
Calls in AWS CloudTrail.

AWS Config provides a detailed view of the resources associated with your
AWS account, including how they are configured, how they are related to
one another, and how the configurations and their relationships have changed
over time. For more information, see the AWS Config Developer Guide. For information
about the AWS Config calls logged by CloudTrail, see Logging AWS Config API Calls with
AWS CloudTrail.

Support began 02/10/2015

AWS Managed Services

AWS Managed Services provides ongoing management of your AWS
infrastructure so you can focus on your applications. By implementing best
practices to maintain your infrastructure, AWS Managed Services helps to
reduce your operational overhead and risk. For more information, see AWS Managed
Services.

Support began 12/21/2016

AWS OpsWorks

AWS OpsWorks provides a simple and flexible way to create and manage stacks
and applications. It supports a standard set of components—including
application servers, database servers, load balancers, and more—that you can
use to assemble your stack. These components all come with a standard
configuration and are ready to run. For more information, see the
AWS OpsWorks User Guide. For information about the AWS OpsWorks calls logged by CloudTrail, see
Logging AWS OpsWorks
API Calls By Using AWS CloudTrail.

AWS Service Catalog allows organizations to create and manage catalogs of IT services
that are approved for use on AWS. These IT services can include everything
from virtual machine images, servers, software, and databases to complete
multi-tier application architectures. For more information, see the
AWS Service Catalog Developer Guide. For information about the AWS Service Catalog calls logged by CloudTrail, see
Logging AWS Service Catalog API
Calls with AWS CloudTrail.

Amazon CloudFront speeds up distribution of your static and dynamic web content to
end users. CloudFront delivers your content through a worldwide network of edge
locations. When an end user requests content that you're serving with CloudFront,
the user is routed to the edge location that provides the lowest latency, so
that content is delivered with the best possible performance. For more
information, see the Amazon CloudFront Developer Guide. For information about the CloudFront calls
logged by CloudTrail, see Using AWS CloudTrail to Capture Requests Sent to the CloudFront API.

Amazon Virtual Private Cloud (Amazon VPC) enables you to launch AWS resources into
a virtual
network that you've defined. This virtual network closely resembles a
traditional network that you would operate in your own data center with the
added benefit of using the scalable AWS infrastructure. For more
information, see the Amazon VPC User Guide. The Amazon VPC API is a subset of the Amazon EC2
API. For information about the Amazon EC2 calls logged by CloudTrail (including those
for Amazon VPC), see Logging API
Calls Using AWS CloudTrail.

Support began 11/13/2013

Security, Identity
& Compliance

AWS Certificate Manager

AWS Certificate Manager (ACM) handles the complexity of provisioning, deploying, and
managing certificates provided by ACM (ACM Certificates) for your
AWS-based websites and applications. For more information, see the
AWS Certificate Manager User Guide. For information about the ACM calls logged by CloudTrail, see
Using AWS CloudTrail.

Support began 03/25/2016

Amazon Cloud Directory

Amazon Cloud Directory is a highly scalable, high performance, multitenant
directory service in the cloud. Its web-based directories make it easy for
you to organize and manage application resources such as users, groups,
locations, devices, policies, and the rich relationships between them. Cloud
Directory is a foundational building block for developers to create
directory-based solutions easily and without having to worry about
deployment, global scale, availability, and performance. For more
information, see Amazon
Cloud Directory in the AWS Directory Service Administration Guide.

AWS Identity and Access Management (IAM) is a web service that enables AWS customers
to manage
users and user permissions. By using IAM, you can centrally manage users,
security credentials such as access keys, and permissions that control which
AWS resources users can access. For more information, see the
IAM User Guide. For information about the IAM calls logged by CloudTrail, see
Logging IAM
Events with AWS CloudTrail.

Support began 11/13/2013

Amazon Inspector

Amazon Inspector enables you to analyze the behavior of your AWS resources and
helps you to identify potential security issues. With Amazon Inspector, you can define
a collection of AWS resources that you want to include in an assessment
target. For more information, see the Amazon Inspector User Guide. For information about
the Amazon Inspector calls logged by CloudTrail, see Logging Amazon Inspector API
calls with AWS CloudTrail.

Support began 04/20/2016

Amazon GuardDuty

Amazon GuardDuty is a continuous security monitoring service that analyzes
and processes the following data sources: VPC Flow Logs, AWS CloudTrail event
logs, and DNS logs. For more information, see the Amazon GuardDuty User Guide.

Support began 02/12/2018

AWS Key Management Service

AWS Key Management Service is a managed service that makes it easy for you to create
and
control the encryption keys used to encrypt your data. AWS KMS is integrated
with other AWS services including Amazon EBS, Amazon S3, and Amazon Redshift. For
more
information, see the AWS Key Management Service Developer Guide. For information about the AWS KMS calls
logged by CloudTrail, see Logging AWS KMS API Calls.

AWS WAF is a web application firewall that lets you monitor the HTTP and
HTTPS requests that are forwarded to Amazon CloudFront and lets you control access
to
your content. For more information, see the AWS WAF Developer Guide. For information
about the AWS WAF calls logged by CloudTrail, see Logging AWS WAF API Calls
with AWS CloudTrail.

Support began 04/28/2016

Storage

Amazon Elastic Block Store

Amazon Elastic Block Store (Amazon EBS) allows you to create persistent storage volumes
and
attach them to Amazon EC2 instances. Once attached, you can create a file system
on top of these volumes, run a database, or use them in any other way you
would use a block device. For more information, see the Amazon EC2 User Guide for Linux Instances. For
information about the Amazon EBS calls logged by CloudTrail, see Logging API Calls Using
AWS CloudTrail.

Support began 11/13/2013

Amazon Elastic File System

Amazon Elastic File System (Amazon EFS) is a file storage service for Amazon Elastic
Compute Cloud (Amazon EC2)
instances. You can create and configure file systems quickly and easily with
Amazon EFS. CloudTrail logs all Amazon EFS API actions. For more information, see
the
Amazon Elastic File System User Guide. For information about the Amazon EFS calls logged by CloudTrail, see
Logging Amazon EFS API
Calls with AWS CloudTrail.

You can use Amazon Simple Storage Service (Amazon S3) to store and retrieve any amount
of data at
any time, from anywhere on the web. You can also use CloudTrail logs together with
Amazon S3 server access logs. For more information, see the Amazon Simple Storage Service Developer Guide.

CloudTrail logs Amazon S3 bucket level events such as the creating and deleting
buckets, changes to bucket policy, and changes to replication status. You
can also configure your trail to log object level events such as creating,
updating, or deleting S3 objects in a bucket. For more information, see
Logging Amazon S3 API Calls
By Using AWS CloudTrail.

Support began 09/01/2015 for management events

Support began 11/21/2016 for data events

AWS Storage Gateway

AWS Storage Gateway is a service that connects an on-premises software appliance
with cloud-based storage to provide seamless and secure integration between
your on-premises IT environment and the AWS storage infrastructure in the
cloud. For more information, see the AWS Storage Gateway User Guide. For information
about the AWS Storage Gateway Volume Gateway calls logged by CloudTrail, see Logging AWS Storage Gateway
API Calls by Using AWS CloudTrail.

Support began 12/16/2014

Support

AWS Personal Health Dashboard

AWS Health provides ongoing visibility into the state of your AWS
resources, services, and accounts. The service gives you awareness and
remediation guidance for resource performance or availability issues that
may affect your applications that run on AWS. CloudTrail logs all AWS Health
API operations. For more information, see the AWS Health User Guide. For
information about AWS Health API calls logged by CloudTrail, see Logging
AWS Health API Calls with AWS CloudTrail.

Support began 12/01/2016

AWS Support

AWS Support offers a range of plans that provide access to tools and
expertise that support the success and operational health of your AWS
solutions. All support plans provide 24x7 access to customer service, AWS
documentation, whitepapers, and support forums. For more information, see
the AWS Support User Guide. For information about the AWS Support API calls logged by
CloudTrail, see Logging
AWS Support API Calls with AWS CloudTrail.

Support began 04/21/2016

Services That Support Logging Data Events

Data events provide insight into the resource operations performed on or within a
resource. These are also known as data plane operations. Data events are often
high-volume activities. Data events are disabled by default when you create a trail.
To
record CloudTrail data events, you must explicitly add the supported resources or
resource
types for which you want to collect activity to a trail. For more information, see
Data Events.

Amazon Simple Storage Service (Amazon S3)

Amazon Simple Storage Service (Amazon S3) is storage for the internet. It is designed
to make
web-scale computing easier for developers.

You can configure a trail to log Amazon S3 object-level events such as
creating, updating, or deleting S3 objects in a bucket. For a list of
supported data events that CloudTrail logs for Amazon S3 objects, see Amazon S3 Object-Level Actions Tracked by CloudTrail Logging in the
Amazon Simple Storage Service Developer Guide.

Support began 11/21/2016

AWS Lambda

AWS Lambda is a zero-administration compute platform that runs your code in
the AWS Cloud, providing the high availability, security, performance, and
scalability of AWS infrastructure. For more information, see the
AWS Lambda Developer Guide. You can configure a trail to log data events for the
Invoke API.